CVE-2022-43495

Severity CVSS v4.0:
Pending analysis
Type:
CWE-476 NULL Pointer Dereference
Publication date:
03/11/2022
Last modified:
07/11/2022

Description

OpenHarmony-v3.1.2 and prior versions had a DOS vulnerability in distributedhardware_device_manager when joining a network. Network attakcers can send an abonormal packet when joining a network, cause a nullptr reference and device reboot.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:openharmony:openharmony:*:*:*:*:*:*:*:* 3.1 (including) 3.1.2 (including)